If an agent or admin enables 2-factor authentication in their user profile, they'll no longer be able to use just their username and password to
authenticate API requests
. Alternatives include using an API token or implementing an OAuth authorization flow.

Using an API token

If an agent or admin has enabled 2-factor authentication, they can use an API token with their username, instead of a password, formatted as follows: